e-alfred
commented
8 years ago Is it possible to get failed login information from the gitit log file?
Open e-alfred opened 8 years ago
e-alfred
commented
8 years ago Is it possible to get failed login information from the gitit log file?
jgm
commented
8 years ago Current code will produce a warning in the log for failed logins using oauth method, but not using the form method. So, not conisstently.
+++ e-alfred [Apr 27 16 08:24 ]:
Is it possible to get failed login information from the gitit log file?
— You are receiving this because you are subscribed to this thread. Reply to this email directly or [1]view it on GitHub
References
e-alfred
commented
8 years ago Any chance to get this information also for the form method into the log files?
jgm
commented
8 years ago It could be done, but I don't have time to do it now (and I'm barely maintaining gitit, which I don't use myself). You can leave this issue open.
For now I would suggest putting gitit behind an apache or nginx server, and then you can look for repeated hits to the login page in that log.
+++ e-alfred [Apr 28 16 03:57 ]:
Any chance to get this information also for the form method into the log files?
— You are receiving this because you commented. Reply to this email directly or [1]view it on GitHub
References
Hello,
it would be useful to have instructions/scripts for using Fail2ban with Gitit. This would be a useful extension to keep away brute force attackers and other malicious attacks.